[Secure-testing-commits] r39746 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Feb 17 16:33:51 UTC 2016
Author: carnil
Date: 2016-02-17 16:33:51 +0000 (Wed, 17 Feb 2016)
New Revision: 39746
Modified:
data/CVE/list
Log:
Mark CVE-2016-2392 as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-17 16:23:00 UTC (rev 39745)
+++ data/CVE/list 2016-02-17 16:33:51 UTC (rev 39746)
@@ -1,11 +1,13 @@
CVE-2016-2392 [usb: null pointer dereference in remote NDIS control message handling]
- qemu <unfixed>
+ [jessie] - qemu <no-dsa> (Minor issue)
+ [wheezy] - qemu <no-dsa> (Minor issue)
[squeeze] - qemu <end-of-life> (Not supported in Squeeze LTS)
- qemu-kvm <removed>
+ [wheezy] - qemu-kvm <no-dsa> (Minor issue)
[squeeze] - qemu-kvm <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-02/msg02553.html
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1302299
- TODO: check affected versions
CVE-2016-2391 [usb: multiple eof_timers in ohci leads to null pointer dereference]
- qemu <unfixed>
[squeeze] - qemu <end-of-life> (Not supported in Squeeze LTS)
More information about the Secure-testing-commits
mailing list